belco-bv
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage from the official NPM registry. This utility is maintained by the vendor (membranedev) and is used to facilitate communication with the Membrane platform and the Belco B.V. API.- [COMMAND_EXECUTION]: The instructions direct the agent to execute shell commands via themembraneCLI, such asmembrane login,membrane connect, andmembrane action run. These operations are standard for the skill's primary function of managing third-party service data.- [DATA_EXFILTRATION]: Sensitive credentials are never handled directly by the skill scripts. Instead, the skill uses a delegated authentication flow where the user completes login via the vendor's platform, and the CLI manages session tokens securely.
Audit Metadata